net/wireguard-tools: Drop workaround for Darwin bash
On macOS, system bash is no longer used as a tool, so there's no need
to undef it. (This workaround was specific to Darwin and cited bash 3.x.)
Pull up following revision(s) (requested by riastradh in ticket #1299):
sys/arch/i386/stand/efiboot/bootia32/multiboot32.S: revision 1.3
sys/arch/i386/stand/efiboot/bootx64/efibootx64.c: revision 1.7
sys/arch/i386/stand/efiboot/bootia32/efibootia32.c: revision 1.9
sys/arch/i386/stand/efiboot/bootia32/startprog32.S: revision 1.4
sys/arch/i386/stand/efiboot/bootx64/multiboot64.S: revision 1.2
sys/arch/i386/stand/efiboot/bootx64/startprog64.S: revision 1.6
x86/efiboot: Put writable variables in .data, not .text.
And define them in the .c file where they're used; no need to have
extra unnecessary .S stuff just to define a global variable.
Based on patch by Paul Ripke to bootx64.efi, adapted for bootia32.efi
too.
PR kern/59151: efiboot hangs on new motherboard
graphics/py-matplotlib: Fix build under NetBSD/amd64 11.99.6 at least
* C function abs() returns int value and it causes fingerprint mismatch
of std:clamp() C++ function. Use std:abs() for C++ instead.
Pull up following revision(s) (requested by riastradh in ticket #357):
crypto/external/bsd/openssh/dist/sshd_config: revision 1.30
sshd_config(5): Clarify again how to disable password authentication.
Upstream changed their version of this text by adding some quotation
marks but not really making it clearer. We had replaced the comment a
while ago to cross-reference UsePAM but it got lost in the update to
OpenSSH 10.0 last year. Restore the explanation of how to disable
password authentication, and expand on the relevant knobs a little.
PR bin/32313: sshd 'PasswordAuthentication no' silently fails
offlineimap: update to 8.0.2.
Switch to the upstream Python 3 version that's been
developed in a different repository, but but by the same organization.
(previously in mail/offlineimap3)
Pull up following revision(s) (requested by riastradh in ticket #2029):
sys/arch/i386/stand/efiboot/bootia32/multiboot32.S: revision 1.3
sys/arch/i386/stand/efiboot/bootx64/efibootx64.c: revision 1.7
sys/arch/i386/stand/efiboot/bootia32/efibootia32.c: revision 1.9
sys/arch/i386/stand/efiboot/bootia32/startprog32.S: revision 1.4
sys/arch/i386/stand/efiboot/bootx64/multiboot64.S: revision 1.2
sys/arch/i386/stand/efiboot/bootx64/startprog64.S: revision 1.6
x86/efiboot: Put writable variables in .data, not .text.
And define them in the .c file where they're used; no need to have
extra unnecessary .S stuff just to define a global variable.
Based on patch by Paul Ripke to bootx64.efi, adapted for bootia32.efi
too.
PR kern/59151: efiboot hangs on new motherboard
py-scipy: updated to 1.18.0
SciPy 1.18.0 is the culmination of 6 months of hard work. It contains
many new features, numerous bug-fixes, improved test coverage and better
documentation. There have been a number of deprecations and API changes
in this release, which are documented below. All users are encouraged to
upgrade to this release, as there are a large number of bug-fixes and
optimizations. Before upgrading, we recommend that users check that
their own code does not use deprecated SciPy functionality (to do so,
run your code with ``python -Wd`` and check for ``DeprecationWarning`` s).
Our development attention will now shift to bug-fix releases on the
1.18.x branch, and on adding new features on the main branch.
p5-CSS-Minifier-XS: update to 0.14.
0.14 2026-06-28 16:30:59-07:00 America/Vancouver
- Fixes a memory leak in minify(), when the entire document is minified
away.
p5-JavaScript-Minifier-XS: update to 0.16.
0.16 2026-06-28 14:10:28-07:00 America/Vancouver
- Fixes CVE-2026-56017, which caused Perl to SEGFAULT when calling
minify(). Thanks to CPANSec for raising the issue, and providing a
prototype fix.
- Fixes CVE-2026-56018, caused by a memory leak in minify() where each
tokenized Node's "contents" buffer were not properly freed, resulting in a
memory leak on every call.
- Updated author tests for "does the JS still compile?", to use "node"
instead of "jsl".
Pull up following revision(s) (requested by riastradh in ticket #356):
sys/arch/i386/stand/efiboot/bootia32/multiboot32.S: revision 1.3
sys/arch/i386/stand/efiboot/bootx64/efibootx64.c: revision 1.7
sys/arch/i386/stand/efiboot/bootia32/efibootia32.c: revision 1.9
sys/arch/i386/stand/efiboot/bootia32/startprog32.S: revision 1.4
sys/arch/i386/stand/efiboot/bootx64/multiboot64.S: revision 1.2
sys/arch/i386/stand/efiboot/bootx64/startprog64.S: revision 1.6
x86/efiboot: Put writable variables in .data, not .text.
And define them in the .c file where they're used; no need to have
extra unnecessary .S stuff just to define a global variable.
Based on patch by Paul Ripke to bootx64.efi, adapted for bootia32.efi
too.
PR kern/59151: efiboot hangs on new motherboard
Pull up the following, requested by riastradh in ticket #355:
external/bsd/pkg_install/dist/add/parse_cross.c up to 1.1.1.2
external/bsd/pkg_install/dist/info/pkg_info.1 up to 1.5
external/bsd/pkg_install/dist/lib/version.h up to 1.25
external/bsd/pkg_install/lib/Makefile up to 1.12
external/bsd/pkg_install/sbin/Makefile.inc up to 1.6
Sync pkg_install with HEAD.
PR kern/59991: pkg_add: null pointer deref in pkg_add -m parsing.
gotosocial: Update to 0.22.0
Provided by m33 in wip.
This is a big feature release that contains support for relay
subscriptions and relay push connections, a new instance account
directory, better threading using tombstones for deleted statuses,,
and support for auto-cleanup of old remote statuses, among lots of
other things!
WARNING:
- Configuration changes and database schema changes.
- Before starting this new release, first adapt the configuration file,
then do not interrupt as a database migration will take some time.
See https://codeberg.org/superseriousbusiness/gotosocial/releases/tag/v0.22.0
for upgrade instructions.
py-cython: updated to 3.2.8
3.2.8 (2026-06-30)
Bugs fixed
* Assigning a Python 3.14+ ``.__annotate__`` function to a Cython compiled function no longer
evaluates annotations eagerly. Fixes a regression with ``@functools.wraps()`` in Cython 3.2.6.
Patch by Jelle Zijlstra. (Github issue :issue:`7767`)
* In freethreading Python, the necessary object keep-alive while executing user code in
``.__dealloc__()`` uses a safer scheme.
Patch by Yaxing Cai. (Github issue :issue:`7769`)
* The local function state used by ``sys.monitoring`` read from uninitialised memory.
(Github issue :issue:`7774`)
* The ``.ag_running`` flag attribute of async generators was always false on big-endian systems.
